One of the biggest shifts we’ve noticed is the
shift from building security because we think security is good, to
building security as a business. How did you make that cultural
shift happen in our organization?
With organizations migrating to cloud we have a
set of tradeoffs between meeting security teams where they are with
on-prem expectations of security vs cloud-native approaches. How do
you think about investing in next generation products vs holding
the hands of CISOs just stepping into the cloud?
What matters more to you as a leader, secure
cloud (GCP, Workspace) or security products (Chronicle SecOps, BCE,
Is invisible security the same as “building
security in”? Aren’t there security controls where the value is
derived from them being visible to users?
Mandiantbrings services expertise to Google Cloud,
typically not our strong area and not our DNA, how do we plan to
make the most of Mandiant within Google’s culture?
Cloud Security Podcast by Google focuses on security in the cloud, delivering security from the cloud, and all things at the intersection of security and cloud. Of course, we will also cover what we are doing in Google Cloud to help keep our users' data safe and workloads secure.
We’re going to do our best to avoid security theater, and cut to the heart of real security questions and issues. Expect us to question threat models and ask if something is done for the data subject’s benefit or just for organizational benefit.
We hope you’ll join us if you’re interested in where technology overlaps with process and bumps up against organizational design. We’re hoping to attract listeners who are happy to hear conventional wisdom questioned, and who are curious about what lessons we can and can’t keep as the world moves from on-premises computing to cloud computing.